{"id":221890,"date":"2023-11-28T13:07:25","date_gmt":"2023-11-28T13:07:25","guid":{"rendered":"https:\/\/bm.dev.synology.me\/?p=221890"},"modified":"2023-11-28T13:07:25","modified_gmt":"2023-11-28T13:07:25","slug":"bitdefender-noi-tehnici-de-atac-care-vizeaza-google-workspace-si-ar-putea-facilita-lansarea-de-atacuri-ransomware-sau-sustrageri-de-date","status":"publish","type":"post","link":"https:\/\/bm.dev.synology.me\/?p=221890","title":{"rendered":"Bitdefender: Noi tehnici de atac care vizeaz\u0103 Google Workspace \u015fi ar putea facilita lansarea de atacuri ransomware sau sustrageri de date"},"content":{"rendered":"<p>\nSpeciali\u015ftii \u00een securitate informatic\u0103 de la Bitdefender au descoperit noi tehnici de atac care vizeaz\u0103 Google Workspace \u015fi ar putea facilita lansarea de atacuri ransomware sau sustrageri de date, au transmis reprezentan\u0163ii Bitdefender printr-un comunicat.<\/p>\n<p>\n\u201eGoogle Credential Provider for Windows (GCPW) &#8211; care ofer\u0103 organiza\u0163iilor o gestionare eficient\u0103 a computerelor angaja\u0163ilor \u015fi integrare cu Google Workspace. GCPW permite autentificarea utilizatorilor prin conturile Google Workspace, aplic\u00e2nd politici de securitate precum autentificarea \u00een doi pa\u015fi \u015fi implementarea politicilor de gestionare a dispozitivelor mobile (MDM) pentru administrarea la distan\u0163\u0103 a sta\u0163iilor de lucru\u201d, potrivit reprezentan\u0163ilor Bitdefender.<\/p>\n<p>\nPractic, aceste func\u0163ionalit\u0103\u0163i de integrare ale GCPW pot fi exploatate de atacatori prin migrarea de la un computer local la \u00eentreaga infrastructur\u0103 cloud a organiza\u0163iei. Aceste metode de atac pot fi exploatate doar dup\u0103 compromiterea dispozitivului prin alte mijloace.<\/p>\n<p>\nAstfel, pornind de la un singur computer compromis, actorii amenin\u0163\u0103rii pot ac\u0163iona \u00een mai multe moduri pentru a escalada atacul, precum accesarea altor dispozitive clonate care au deja instalat Google Credential Provider for Windows (GCPW); ob\u0163inerea accesului la platforma cloud cu permisiuni personalizate; decriptarea parolelor stocate local pentru a continua atacul \u015fi \u00een afara ecosistemului Google.<\/p>\n<p>\n\u201eBitdefender a comunicat c\u0103tre Google rezultatele cercet\u0103rii, iar compania a confirmat validitatea acestor metode de atac. \u00cen prezent, nu exist\u0103 un plan prin care s\u0103 fie remediate caren\u0163ele de securitate \u00eentruc\u00e2t acestea nu se \u00eencadreaz\u0103 tipului de amenin\u0163\u0103ri urm\u0103rite de Google\u201d, au mai spus reprezentan\u0163ii Bitdefender.<\/p>\n<p>\n\u00cen acest context, speciali\u015ftii Bitdefender \u00eendeamn\u0103 organiza\u0163iile care utilizeaz\u0103 Google Workspace sau Google Cloud Platform s\u0103 fie vigilente cu privire la poten\u0163ialele riscuri.<\/p>\n<p>\n&nbsp;\u201eDetec\u0163ie \u015fi r\u0103spuns \u2013 consolidarea capacit\u0103\u0163ii de detec\u0163ie \u015fi r\u0103spuns a unei organiza\u0163ii ar trebui s\u0103 r\u0103m\u00e2n\u0103 o prioritate. Utilizarea solu\u0163iilor avansate de detec\u0163ie a amenin\u0163\u0103rilor ajut\u0103 la identificarea \u015fi contracararea tentativelor de ob\u0163inere a accesului neautorizat sau suspect. Plan de r\u0103spuns la incidente \u2013 dezvoltarea \u015fi men\u0163inerea unui plan de r\u0103spuns la incidente sunt esen\u0163iale pentru gestionarea eficient\u0103 a dispozitivelor compromise la nivel local. Acest plan trebuie s\u0103 includ\u0103 proceduri de investigare, limitare \u015fi recuperare \u00een urma unor incidente de securitate.\u201d<\/p>\n<p>\n&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Speciali\u015ftii \u00een securitate informatic\u0103 de la Bitdefender au descoperit noi tehnici de atac care vizeaz\u0103 Google Workspace \u015fi ar putea facilita lansarea de atacuri ransomware sau sustrageri de date, au transmis reprezentan\u0163ii Bitdefender printr-un comunicat. \u201eGoogle Credential Provider for Windows (GCPW) &#8211; care ofer\u0103 organiza\u0163iilor o gestionare eficient\u0103 a computerelor angaja\u0163ilor \u015fi integrare cu Google [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[510],"tags":[363,8039,32512,219,7745],"class_list":["post-221890","post","type-post","status-publish","format-standard","hentry","category-actualitate","tag-atacuri","tag-bitdefender","tag-facilitare","tag-securitate","tag-specialisti"],"_links":{"self":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/221890","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=221890"}],"version-history":[{"count":0,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=\/wp\/v2\/posts\/221890\/revisions"}],"wp:attachment":[{"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=221890"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=221890"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bm.dev.synology.me\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=221890"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}